Top 3063 security open source projects

Wifiphisher is a rogue Access Point framework for conducting red team engagements or Wi-Fi security testing. Using Wifiphisher, penetration testers can easily achieve a man-in-the-middle position against wireless clients by performing targeted Wi-Fi association attacks. Wifiphisher can be further used to mount victim-customized web phishing attacks against the connected clients in order to capture credentials (e.g. from third party login pages or WPA/WPA2 Pre-Shared Keys) or infect the victim stations with malwares.

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp

A JWT (JSON Web Token) Encoder & Decoder

Harden Your Security Headers For Vapor

A web crawler (for bug hunting) that gathers more than you can imagine.

Portable OpenSSH

GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.

protocol fuzzing toolkit

⚡🐧 - Thunderbolt 3 device manager | This is a MIRROR of bolt from fd.o

A framework for secure and scalable network traffic analysis - https://netcap.io

A TouchID-aware 2-factor authenticator for macOS

服务端软件技术树：服务端主流技术九大分类和全景图

ZITADEL - Cloud Native Identity and Access Management

Simple ACL for PHP

A complete overhaul of the Golang wrapper for libsodium

An internal improved version of Hessian powered by Ant Financial.

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

A proposed standard that allows websites to define security policies.

Defcon24 Workshop Contents : Ninja Level Infrastructure Monitoring

🔑 U2F second factor provider for Nextcloud

A lightweight tool to score network traffic and flag anomalies

Simplifying Seccomp enforcement in containerized or non-containerized apps

Check any website (or set of websites) for insecure security headers.

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

[OUTDATED & UNSUPPORTED] Droid Watcher - Android Spy Application

Ctf solutions from p4 team

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Google Cloud Platform IOT Core Examples

Common password pattern generator using strings list

Mask sensitive data: replace blacklisted elements with redacted values

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Collection of quality safety articles. Awesome articles.

Binary Analysis Platform

PHP Captcha library

Transparent proxy through Tor for Arch Linux OS

😎 Curated list about cryptocurrency security (reverse / exploit / fuzz..)

Automatically configure Wireguard interfaces in distributed system. It supports Consul as backend.

Community curated list of templates for the nuclei engine to find security vulnerabilities.

A libre cross-platform disassembler.

Do you think you are safe using private browsing or incognito mode?. 😄 👿 This will prove that you're wrong.

Windows 10 hardening guide without gimmicks

Generate WireGuard profile from Cloudflare Warp account

🌟 FastSitePHP 🌟 A Modern Open Source Framework for building High Performance Websites and API’s with PHP

Guide to building a Linux or BSD router on the PC Engines APU platform

A Browser extension that lets you use your phone as a U2F/WebAuthN Authenticator for strong, unphishable 2FA.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

OSSSM (awesome). Open source short-term secure messaging

a pure python Java KeyStore file parser, including private key decryption

A Collection of Hacks in IoT Space so that we can address them (hopefully).

Python3 library and command line for GreyNoise

SIAC is an enterprise SIEM built on open-source technology.

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

OpenZeppelin Contracts is a library for secure smart contract development.

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Exploitation Framework for Embedded Devices

Certificate authority and access plane for SSH, Kubernetes, web apps, databases and desktops

HACL*, a formally verified cryptographic library written in F*

Open source Dropbox-like file sharing with full client encryption !

Webshell Manager